Guest User!

You are not Sophos Staff.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Firewall log file in advanced shell and logging approved traffic

Hi all,

 

I having a hard time locating a logfile in the advanced shell, where i can see approved traffic through the firewall.

I need to log when a firewall rule is accepting a connection.

 

I hope this is possible, and someone can guide me?

 

//Heine



This thread was automatically locked due to age.
  • Heine,
    I do not think is possible. You have to use Live Log from top-right inside the XG v16 and use the Firewall menu to see denied/access traffic. Also traffic is coloured and easy to understand.

    Hope this helps!

    Thanks

  • Yeah i noticed that on the web interface... But that green line is not logged in any file at all?

  • Hi HeineMadsen1, 

    You may use the Log Viewer to check which Signature/Website is allowed as for the packet-level capture you may need to go to System > Diagnostics > Packet Capture and Analyze the logs . In console you may also check via Tcpdump as well. We do not log traffic for packet level and would generate logs for Request made eg : Mail , Http/S, IPS etc

    If you wish to analyze the logs in Shell, you may go to /log/ 

    Thanks and Regards

    Aditya Patel